Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Hi, After importing a ScreenOS configuration into Expedition 1.1.12, the dashboard shows 584 Addresses in Project Statistics. But when going to Objects -> Address, only "No Address" is displayed in the left pane (despite I have "No Filters"). Does someone know what's wrong ? Regards
Hi all, We have noticed on our expedition that when the logs from our Palo Alto firewalls are being process, they are not being deleted automatically. While processing the files i ran the comment # tail -f /tmp/error_logCoCo to track the progress of it, and at the end it comes with the following error: rm: cannot remove '/home/expedition/log...
Hi, I'm using Expedition 1.1.12 and PanOs 8.1.7. Since some time I fail in creating the ZONES via Expedition/API. This while the creation of subinterfaces, Virtual router etc is working fine. When sending the zone config by API, following message is received: (if this zone config is removed out of the config, it's another one it's complaining ab...
Hello, It's exiting to once again be working with PaloAlto. I'm trying to export/import Securiyt Policy from R80.20 and have the following questions. 1. Is it supported? I see R80.10 option is greyed out. 2. When I run the suggested mgmt_cli command, I receive the message listed below, any thoughts?Couldn't connect to serverIf you need...
Expedition 1.1.3, BP 3.6.3, no internal checks to remediate, jobs and task managers up and running. Got 2 PA VMs running 9.0.1 in an HA cluster. Created the required user to use API following the admin guide and https://www.youtube.com/watch?v=W0z8uxiI5Bg Retrieve contents does not work. I've restarted the services in Expedition - this alleg...
Migrating a Fortinet config and I just finished remapping interfaces. I saw a previous thread on Base Configuration but it was unresolved. Wondering what the "base configuration" is defined as. Is it the same as "factory reset"? If I'm migrating from a FGT1000C to a PAN3060 do I factory reset a 3060 and import that into Expedition? Shout ...
On page 11 of the User Guide, it says this: "To convert to the proper naming convention, we can select the Ethernet1/1 who is parent for more sub-interfaces (vlan tags) and click on the Remap Interface Name located at the bottom left-side bar" When I select an interface then click on the "Remap Interface Name" I do not get a pop-up box like ...
I have ended up in a bit of an odd situation with an undesirable result 😕 In the process of importing CSV's from an unsupported source, I have ended up importing an entire rulebase into the "shared" VSYS of a standalone base firewall config. This might be OK for objects, or a rulebase in Panorama, but not a valid config for a standalone devic...
The attached document describes the 'Admin Roles' that can be used when adding an admin account to devices connected to Expedition. One key point to note is that Expedition does not need 'Commit' permissions.
Hi all, One of our customer move from Checkpoint to Palo Alto (single VSYS and two zones). The idea now is to split the network multiple zone and multiple VSYS (5). I would like to use the 'Auto zone Assign' features so Expedition will calculate the source zone and destination zone automatically. For the moment, if I move one interface from on...
I'm having some trouble with Best Practices analysis and hoping someone here can confirm the functionality. I have many devices managed by Panorama. Their configuration is built through a combination of some local device configuration and policies, plus settings from templates and device groups in Panorama. I've imported all devices includin...
The 'interzone-default' and 'intrazone-default' security policies are not included in the running-config or candidate-config files by default (no pun intended!). If you want to apply the machine learning and the rule enrichment to these policies, the administrator will need to perform an 'Override' to those policies. After overriding, logging ...
Hello, When I run export commands at the customer, I get an error as follows. Anybody have an idea? mgmt_cli show access-rulebase offset 0 limit 400 name "Internet Security" details-level "full" use-object-dictionary true --format json > RuleSet_0_400.json code: "generic_err_invalid_syntax"message: "Login request message processing fail...
Hi, Is it possible to reset an expedition VM to factory default? i.e. if someone is concerned that their vm is buggy and broken can they reset the box using linux cli without redeploying the vm from ova? Thanks
What are the differences among Mega, Atomic SubAtomic and Clean options when generating API Requests? When do you use what?
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
